Community discussions

MikroTik App
 
rmasoumvand
just joined
Topic Author
Posts: 1
Joined: Sat Apr 29, 2023 4:03 pm

Use usermanager on same radius client router

Sat Apr 29, 2023 4:16 pm

Hi,
I hope my question is not dumb,
I have a mikrotik router (v7.3.1 on x86) that I am setting up the ikev2 method with user/pass authentication via EAP. The problem I have is that we need a RADIUS server to perform authentication. I wanted to know if it is possible to use the same router that has the role of RADIUS client as its own RADIUS server? I mean that it authenticates ikev2 users through its own usermanager.

I hope I was able to get my point across. thank you.
 
User avatar
bpwl
Forum Guru
Forum Guru
Posts: 2984
Joined: Mon Apr 08, 2019 1:16 am

Re: Use usermanager on same radius client router  [SOLVED]

Sun Apr 30, 2023 12:06 am

I expect it to work via address 127.0.0.1.
There is already a default accept rule in the firewall intended for CAPsMAN : "defconf: accept to local loopback (for CAPsMAN)"

The rest should be the same as for any other RADIUS client setup:
- add router 127.0.0.1 in User Manager , with a defined shared secret
- add link to RADIUS server in "RADIUS" , with IP 127.0.0.1 and same secret
- check firewall rule for 127.0.0.1 for input allowed

Who is online

Users browsing this forum: No registered users and 14 guests